Like 'an Episode of Homeland': Fintech and the New CFIUS Rules
In-house lawyers for payment systems, mobile banking and insurance-focused technologies, cryptocurrency and exchange platforms and other disrupters of the financial services industry, as well as asset managers, will have to pay close attention to changes in the regulations governing reviews of foreign investment transactions by the Committee on Foreign Investment in the United States that took effect this month.
February 25, 2020 at 06:01 PM
7 minute read
The original version of this story was published on Corporate Counsel
The new U.S. Treasury Department regulations governing reviews by the Committee on Foreign Investment in the United States took effect earlier this month and so-called financial technology, or "fintech," companies and their venture capital and private equity investors are among the industries most affected, foreign trade and national security lawyers said.
In-house lawyers for these companies, which broadly defined include payment systems, mobile banking and insurance-focused technologies, cryptocurrency and exchange platforms and other innovative disrupters of the financial services industry, as well as asset managers, will have to pay close attention to the changes.
Some of the new regulations that took effect on Feb. 13 under the Foreign Investment Risk Review Modernization Act of 2018 were drafted specifically to address the issue of minority stakes in U.S. tech startup companies deemed important to U.S. military or national security interests.
"This is such an expanded group of companies because the way CFIUS looks at this now is like this is an episode of 'Homeland,'" the television series, said Doreen Edelman, founder and chairwoman of Lowenstein Sandler's global trade and policy practice in Washington, D.C.
In transactions, "you really have to open up both sides, know beneficial ownership on both sides of the deal and what they are going to do with the technology in the future. It has to be forward-thinking," Edelman said.
"Something else GCs ought to know is that the risk may be bigger for the buyer than the seller. It depends on how the agreement is written and what the investment is," she said. "Also, there is no de minimis on this. If it is a $3 million investment, you still have to consider CFIUS."
Ama Adams, a Ropes & Gray international trade partner, said: "Given the global ecosystem, if you have a fintech startup looking to bring on foreign investment, it is important that the general counsel not just look at it from a control stake but also noncontrol, minority stakes. What are the foreign investors asking for? Is it critical tech? Identifiable data? Look into it."
Matthew Jacobson, a partner in Ropes & Gray's mergers & acquisitions and co-head of its telecom, media and technology practice based in San Francisco who once was corporate counsel for Hewlett-Packard Co., said, "CFIUS being tailored toward broader policy goals, anything with [data] processing and critical computing could drift in that direction" under the right set of facts.
There are three key areas that in-house counsel should consider, the CFIUS lawyers said. The first is CFIUS' newly expanded jurisdiction over critical and emerging technologies and technology companies; the second is critical infrastructure; and the third is sensitive personal data. In the fintech context, these could include:
1. Companies that are engaged in developing artificial intelligence and other critical technologies, including emerging and foundational technologies. That could be biometrics and encryption in financial applications. "Many financial services businesses are developing their own types of tech that include AI and advanced computing and they could fall under 'emerging and foundational technologies' subject to mandatory reporting requirements," Adams said. Edelman said, "In order to do the CFIUS analysis, you have to know if you have critical technology. The pilot program has gone away, but it is still very helpful because it tells us the focus industries where the government feels there is risk and what they care about."
2. Companies that provide, serve or maintain our electronic banking and money transfer infrastructure, as well as telecommunications infrastructure in general.
3. Companies that maintain personally identifiable information on 1 million or more Americans, especially data about their financial distress or indebtedness, including certain types of banking and financial information. In other words, "could an employee of the investor get access to sensitive data and use it for a nefarious purpose?" Edelman said.
Buyers or investors who are not from the United Kingdom, Canada or Australia may require closer vetting in dealmaking. Those three countries were essentially "whitelisted" from the new CFIUS regulations in many instances, at least for now, but the regulation allows for countries to be added or deleted from the list based on their own foreign investment rules.
Under the new regulations it is important also to consider where fintech companies are truly domiciled, Jacobson said, because a company with a headquarters in name only also could come under scrutiny by the interagency CFIUS panel. He said, "When people are looking for money they may not care that much where it comes from, but fundraising is something that they need to be paying attention to."
Edelman also emphasized the importance of thorough vetting. "You have to pierce the veil of these companies. You have to know the beneficial owners," she said.
Surprises can pop up in many types of transactions. If the company is interested in taking on additional foreign investment or debt or they want to sell the business, it needs to think about how these foreign investment rules could affect their strategic business or exit plan, she said.
"We have seen situations where a tech company [with critical technologies] is of interest to a U.S. buyer and they find out there is foreign ownership already in the company and it poses a problem for the potential buyer because there is CFIUS concern," Edelman said. "The concern is that because of the national security implication, the regulations are written so broadly that if the U.S. government decided there was a national security risk, they could unwind or require some form of divestiture of foreign ownership."
Edelman said, "The sooner you know the better," adding that CFIUS is even relevant in bankruptcy or auction situations.
The CFIUS lawyers agreed that companies and their general counsel are going to have to be more foresighted in cross-border fintech transactions given the new regulations, and especially with respect to decisions about voluntary filings, which are still a "balancing act," according to Edelman.
Edelman said that if she were a general counsel, "I would want to have it reviewed initially and get something in writing that I had someone review it and tell me what my risks are if I don't file, or why I don't need to file [for a CFIUS review] in case the government comes knocking on the door later."
Adams said, "This new landscape for CFIUS regulations is a prime example of how the definition of national security continues to evolve with respect to foreign investment."
Read More:
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View All'Water Cooler Discussions': US Judge Questions DOJ Request in Google Search Case
3 minute readDemocratic State AGs Revel in Role as Last Line of Defense Against Trump Agenda
7 minute readBig Law Communications, Media Attorneys Brace for Changes Under Trump
4 minute readLaw Firms Mentioned
Trending Stories
- 1Judge Denies Sean Combs Third Bail Bid, Citing Community Safety
- 2Republican FTC Commissioner: 'The Time for Rulemaking by the Biden-Harris FTC Is Over'
- 3NY Appellate Panel Cites Student's Disciplinary History While Sending Negligence Claim Against School District to Trial
- 4A Meta DIG and Its Nvidia Implications
- 5Deception or Coercion? California Supreme Court Grants Review in Jailhouse Confession Case
Who Got The Work
Michael G. Bongiorno, Andrew Scott Dulberg and Elizabeth E. Driscoll from Wilmer Cutler Pickering Hale and Dorr have stepped in to represent Symbotic Inc., an A.I.-enabled technology platform that focuses on increasing supply chain efficiency, and other defendants in a pending shareholder derivative lawsuit. The case, filed Oct. 2 in Massachusetts District Court by the Brown Law Firm on behalf of Stephen Austen, accuses certain officers and directors of misleading investors in regard to Symbotic's potential for margin growth by failing to disclose that the company was not equipped to timely deploy its systems or manage expenses through project delays. The case, assigned to U.S. District Judge Nathaniel M. Gorton, is 1:24-cv-12522, Austen v. Cohen et al.
Who Got The Work
Edmund Polubinski and Marie Killmond of Davis Polk & Wardwell have entered appearances for data platform software development company MongoDB and other defendants in a pending shareholder derivative lawsuit. The action, filed Oct. 7 in New York Southern District Court by the Brown Law Firm, accuses the company's directors and/or officers of falsely expressing confidence in the company’s restructuring of its sales incentive plan and downplaying the severity of decreases in its upfront commitments. The case is 1:24-cv-07594, Roy v. Ittycheria et al.
Who Got The Work
Amy O. Bruchs and Kurt F. Ellison of Michael Best & Friedrich have entered appearances for Epic Systems Corp. in a pending employment discrimination lawsuit. The suit was filed Sept. 7 in Wisconsin Western District Court by Levine Eisberner LLC and Siri & Glimstad on behalf of a project manager who claims that he was wrongfully terminated after applying for a religious exemption to the defendant's COVID-19 vaccine mandate. The case, assigned to U.S. Magistrate Judge Anita Marie Boor, is 3:24-cv-00630, Secker, Nathan v. Epic Systems Corporation.
Who Got The Work
David X. Sullivan, Thomas J. Finn and Gregory A. Hall from McCarter & English have entered appearances for Sunrun Installation Services in a pending civil rights lawsuit. The complaint was filed Sept. 4 in Connecticut District Court by attorney Robert M. Berke on behalf of former employee George Edward Steins, who was arrested and charged with employing an unregistered home improvement salesperson. The complaint alleges that had Sunrun informed the Connecticut Department of Consumer Protection that the plaintiff's employment had ended in 2017 and that he no longer held Sunrun's home improvement contractor license, he would not have been hit with charges, which were dismissed in May 2024. The case, assigned to U.S. District Judge Jeffrey A. Meyer, is 3:24-cv-01423, Steins v. Sunrun, Inc. et al.
Who Got The Work
Greenberg Traurig shareholder Joshua L. Raskin has entered an appearance for boohoo.com UK Ltd. in a pending patent infringement lawsuit. The suit, filed Sept. 3 in Texas Eastern District Court by Rozier Hardt McDonough on behalf of Alto Dynamics, asserts five patents related to an online shopping platform. The case, assigned to U.S. District Judge Rodney Gilstrap, is 2:24-cv-00719, Alto Dynamics, LLC v. boohoo.com UK Limited.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250